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Description 

[0001] The invention relates to a program-data-pro- 
tecting method according to the methods of claims 1 and 
3. 

[CC02] At present, duplication of data such as appli- 
cation programs, OS software, utility programs, etc. by 
unauthorized persons is an everyday affair, and no ef- 
fective countermeasure has yet been devised against 
unauthorized use of such illegally duplicated programs 
and software. 

[0003] US- A-5,01 6,276 discloses a common cryptok- 
ey generation system and a communication system us- 
ing common cryptokeys. A center algorithm is applied 
to identifiers for entities being engaged in communica- 
tion under a center in order to generate secret algo- 
rithms. Further, the secret algorithms are applied to said 
identifiers for the entities in order to compute common 
cryptokeys. The generated common cryptokeys are 
used in a communication system. More specifically in 
said system the common cryptokeys are used for enci- 
phering plain text before it is transmitted by said com- 
munication system to a receiver entity. The receiver en- 
tity comprises means for deciphering said received text 
into plain text again. 

[0004] From US-A-5, 1 03,476 a secure system for ac- 
tivating personal computer software at remote locations 
is known. By providing a registration computer with var- 
ious information about himself a potential licensee can 
register to utilize the program. Once the registration 
process is complete, a tamperproof overlay file is gen- 
erated at the registration computer and transferred to 
the personal computer. The tamperproof overlay file in- 
cludes critical portions of a main program, without which 
the main program would not operate and also contains 
licensee identification and license control data. A unique 
set of encryption and decryption keys is generated and 
the entire contents of the tamperproof overlay file is en- 
crypted using the encryption key. Based upon the en- 
cryption key, a decryption key is provided which is trans- 
ferred to the computer of the licensee along with said 
tamperproof overlay file and said main program file now- 
lacking said critical portions. 

[0005] It is the object of the invention to provide an 
improved program-data-protecting method which effec- 
tively prevents unauthorized users from using the pro- 
gram data (subsequently mentioned as data). 
[0006] That is, the present invention is concerned with 
a data-protecting system in which a center, for example 
a vender of data, prepares a special algorithm, i.e., a 
center algorithm which is secretly held by the center on- 
ly. The center then prepares a secret algorithm exclu- 
sively for the data and for the user by applying the center 
algorithm to the data, which can include software, for 
each data to be used by an individual user, and applying 
the user identifier. The secret algorithm is supplied to 
the user and to the data or software supplier, and the 
data or software supplier prepares the shared encryp- 



tion key used between the data or software supplier and 
the user relying upon the user identifier and the secret 
algorithm of the data or software that is supplied, and 
encrypts part or all of the data or software that is to be 

5 supplied directly or indirectly based upon the encryption 
key, and then supplies it to the user. The user then pre- 
pares the shared encryption key used between the data 
or software supplier and the user, based upon the data 
or software identifier that is supplied, and his own secret 

10 algorithm, and decrypts the encrypted software directly 
or indirectly. 

[0007] Figures 1 to 3 are diagrams illustrating a meth- 
od of embodying the present invention. 
[0008] In the following embodiment, software is re- 
is ferredto as the object to be protected. However, as men- 
tioned above, any data including software can be pro- 
tected, by the present invention. 
[0009] According to the present invention as de- 
scribed above, there is realized a software-protecting 
20 system in which a center prepares a special algorithm 
or a center algorithm which is secretly held by the center 
only. The center prepares a secret algorithm exclusively 
used for the software and for the user by applying the 
center algorithm to the software identifier and the user 
25 identifier which are inherent to the software and the user, 
respectively, and are already known to the public and 
are used without any substantial change. The secret al- 
gorithm is supplied to the user and to the software sup- 
plier, and then when it happens that the software sup- 
30 pNer must supply software to the user, the software sup- 
plier prepares a shared encryption key inherent to both 
the software that is to be supplied, and the user, by in- 
putting the user identifier into the secret algorithm of the 
software that is to be supplied, and encrypts part or all 
3S of the software that is to be supplied directly or indirectly 
based on the encryption key and supplies it to the user. 
The user prepares the shared encryption key between 
the software that is supplied and the user, by inputting 
the software identifier that is supplied into his own secret 
40 algorithm and decrypts the encrypted software directly 
or indirectly. Accordingly, the authorized user is allowed 
to use the software through simple operation but other 
unauthorized users are not able to use it even though 
they may be able to copy it. 
4S [0010] That is, according to the present invention, a 
center (such as, for example, an administration author- 
ity) is provided and secretly, holds a center algorithm. 
[0011] The center prepares a secret algorithm from 
the center algorithm, user and software identifiers 
50 (name, address, administration number, given code, 
symbols, numerals, etc.), and distributes it to the user 
and to the software. Note that the identifiers may be one 
already well-known or not well known to the public or a 
one inherent to the user or the software which is used 
55 without any change, for example. The software to which 
the center supplies the secret algorithm made for the 
software is, for example, the software itself, the software 
supplier, or both. 
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[0012] Here, the software can be an application pro- 
gram, an OS, a utility program or any other program or 
data, and the secret algorithm prepared by the center is 
applied to each one of the software that are to be sup- 
plied to the user irrespective of the contents of the soft- s 
ware. 

[0013] The software supplier can be a supplier that 
supplies software to the user, such as, a software house, 
related manufacturer, vendor or software or apparatus 
for supplying software, or any other entity that supplies io 
software to users requiring a charge or free of charge. 
[0014] The software supplier may often be merged in- 
to a center, and the center may often be merged with a 
user. The software supplier could become a user when 
the supplier takes a position of using the software. 15 
[0015] Here, the user and the software which is des- 
ignated to be used, will have received a secret algorithm 
and identifier from the center in advance or just before 
the operations will be carried out. 

[0016] A user means a person who uses the program 20 
as well as an apparatus which is directly or indirectly 
possessed by the user and executes the software, a de- 
vice associated with the apparatus, the software itself, 
etc. 

[0017] Figure 1 schematically illustrates the operation 2S 
of the present invention. 

[0018] At least a part of a program (P) distributed from 
the software supplier to the user is encrypted (P 1 ) in ad- 
vance by a separate encryption key, i.e., a second en- 
cryption key (K) inherent to the program and a secret 30 
algorithm. At the time of installing the program, a user 
requests the software supplier to supply his identifier 
(IDu). 

[0019] The software supplier prepares a first encryp- 
tion key by using the identifier (IDu) that is applied and 3S 
the secret algorithm inherent to the program, encrypts 
(K 1 ) the above-mentioned second encryption key K by 
using the first encryption key and the encrypted algo- 
rithm, and distributes the encrypted second encryption 
key (K') to the user. 40 
[0020] The user installs the encrypted program (P') by 
using the encrypted second encryption key (K') that is 
distributed and installation software that is directly or in- 
directly attached to the encrypted program (P'). 
[0021] The installation software prepares a loader 45 
which includes the encrypted second encryption key (K 1 ) 
and is linked to the encrypted program (P'). When the 
loader is executed, the loader always prepares a shared 
key (first encryption key) by using the user's secret al- 
gorithm and the program identifier, and decrypts the en- so 
crypted second encryption key (K') together with the de- 
cryption algorithm thereby to prepare the second en- 
cryption key, and then decrypts (P) the encrypted pro- 
gram (P*) by using the second encryption key and the 
decrypted algorithm. ss 
[0022] In the foregoing was described an indirect 
method of encrypting or decrypting the program by us- 
ing two encryption keys. The invention, however, is not 



limited to the above-mentioned indirect method using a 
plurality of encryption keys only but can also be applied 
to a direct method which encrypts or decrypts the pro- 
gram by using a single encryption key (shared key ob- 
tained from its own secret algorithm and the user iden- 
tifier or the program identifier). 

[0023] The methods and contents related to steps for 
preparing shared keys, such as the method of preparing 
a center algorithm, the method of preparing a secret al- 
gorithm, the method of preparing a shared encryption 
key, entity, definition of identifiers, etc., have been dis- 
closed in Japanese Unexamined Patent Publications 
(Kokai) Nos. 36634/1988 and 1 07667/1 98B, (US-A- 
5016276). 

[0024] The identifiers can be applied to the secret al- 
gorithm not only by the systems disclosed in the above- 
mentioned publications but also by a system disclosed 
in literature (Matsumoto, Takashima, Imai: "Constitution 
of Simple One-way Algorithm", Shingakugiho Co., 
IT89-23, July, 1 989). 

[0025] The two or more encrypted or decrypted algo- 
rithms may be the same ones as represented by, for ex- 
ample, a DES (Data Encryption Standard) system, FE- 
AL (Fast Data Encipherment Algorithm) system, etc. 
However, any other system may be employed depend- 
ing upon the speed and the degree of encryption. 

Embodiment 1 

[0026] Fig. 2 is a diagram for explaining a first embod- 
iment of the present invention. Here, the center portion 
is the same as the one mentioned above and is not de- 
scribed again. 

(1) The user possesses a carrier (e.g., IC card, dis- 
kette, or any other storage medium) storing a secret 
algorithm and a personal authentication algorithm 
obtained from the center, a carrier execution unit 
which works in cooperation with the carrier, and an 
identifier. Similarly, the software supplier possesses 
a carrier storing an algorithm therein and a carrier 
execution unit. The software supplier need not pos- 
sess the algorithm in the constitution of the carrier 
and the carrier execution unit. 

(2) A back-up can be freely executed. 

(3) Applicable to all software houses (software sup- 
pliers) and to all programs. 

Environments and Definitions 

[0027] Software house (software supplier): Adminis- 
ters a secret algorithm (program identifier is denoted as 
IDp) inherent to a program (P) that is to be sold. 
[0028] When a program is sold, an enciphered pro- 
gram (P 1 ) is sold, which is obtained by enciphering at 
least a part of the program (P) by utilizing a given ran- 
dom number (K) (second encryption key) (which is in- 
herent to P) and an encryption algorithm. The program 
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(P') is a file thai cannot be executed. 
[0029] The user who has purchased the encrypted 
program (P) applies his own identifier (IDu). Upon re- 
ceiving an application from the authorized user, there- 
fore, the first encryption key is produced by using the 5 
identifier (IDu) and the secret algorithm, and then a ran- 
dom number (K) which is the second encryption key is 
encrypted by using the first encryption key and the en- 
crypted algorithm to produce an encrypted random 
number (K') and thereafter the encrypted random io 
number (K') {«' includes data accompanying the first en- 
cryption key preparation system) is distributed to the us- 
er. 

[0030] User: Request the software house to supply 
his identifier (IDu), at the time to install the purchased is 
program. Sometimes it is not necessary to request to 
supply. The encrypted random number (K 1 ) sent from the 
software house is input to the installer software. The pro- 
gram is used by using a loader prepared by using the 
installer software. 20 
[0031] Installation software: Prepares a loader by us- 
ing an identifier (I Dp) input by the user and an encrypted 
random number (K 1 ) and links it to the encrypted pro- 
gram (P 1 ). The installer software is attached to the en- 
crypted program (P') or is separately obtained (distrib- 25 
uted free of charge), and is used in common for all pro- 
grams. 

[0032] Loader: Obtains the program (P) by decrypting 
the encrypted program (P') by using the carrier pos- 
sessed by the user and the carrier execution unit and 30 
by giving, as parameters, an identifier (IDp) of the pro- 
gram possessed in the file and the encrypted random 
number (K'). The program (P), however, exists in the 
memory onfy but does not assume the form of a file. The 
encrypted program P 1 is encrypted for the required por- 35 
tion only, and the program (P) does not exist in a com- 
plete form. No decryption routine exists in the loader. 
[0033] Carrier execution unit: Is a unit which is formed 
integrally with, separately from, or incorporated in, the 
target program execution unit (e.g., personal computer, 40 
office computer, WS, or any other execution unit) and 
being connected thereto (using infrared ray, electricity, 
light, ultrasonic waves, electromagnetic waves, etc.), 
and is equipped with a mechanism for reading and writ- 
ing the carrier (e.g., IC card, diskette, or any other re- 45 
cording medium), contains a decryption program (de- 
cryption algorithm) (adapter cipher engine: ACE), and 
decrypts the encrypted program (P 1 ) based on the ran- 
dom numbers (K) output by the carrier. The random 
numbers (K) exist only in the carrier execution unit but so 
are not output to the external unit. 
[0034] By taking the future feasibility of this system 
into consideration, furthermore, it is desired that the 
ACE is designed to be capable of being version -upgrad- 
ed or to be capable of being modified (DES -> FEAL, ss 
etc.). The carrier and the carrier execution unit are only 
a few examples, and they may further be merged and 
incorporated into the target program execution unit, or 



may be formed as an integrated structure, or further may 
be formed separately from each other, or may be con- 
nected additionally or intermediately to an interface con- 
nected to a printer or a connecting portion of RS232C 
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as to operate in the target program execution unit. 
[0035] Further, the carrier execution unit may be an 
apparatus including a function of the carrier therein, 
without using a carrier, separately formed from the unit, 
such as an IC card. 

Procedure of Processing 

[0036] 

(1) Processing on the Software House Side — be- 
fore the distribution of the program — 

• The software house divides the target program 
(P) into a plurality of loadable modules and, fur- 
ther, so designs the program that the modules 
are not all loaded at once into the memory. 

• The software house encrypts a given part of 
each of the modules that are divided. Address 
data of the encrypted part exists in the encrypt- 
ed program (P'). The address data itself may 
be encrypted. 

• A random number (second encryption key) (K) 
used for the encryption is unique for each of the 
programs. It may further be made unique for 
each of the modules. 

• Any encryption means may be used, provided 
it can be operated by the decryption program 
(decryption algorithm) ACE incorporated in the 
carrier execution unit. When the software sup- 
plier has its own ACE and distributes it to the 
users, the encryption means is not necessarily 
common to all software suppliers. 

(2) Processing on the User Side — when the pro- 
gram is purchased — (carrier, carrier execution unit 
and installer software are assumed to have already 
been provided) 

• The user is registered by the software supplier, 
and the person identifier is applied. 

(3) Processing on the Software House Side — when 
the user is registered — 

• The random number (K) is encrypted (K*) by us- 
ing the identifier (IDu) applied by the user and 
the secret algorithm (Xp) specific to the pro- 
gram that is distributed. 

In this regard, when the secret algorithm (Xp) 
is used, as shown in Fig. 2, a password code (PIN- 
P) is input, and a determination of whether or not a 
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person having the password is the actual registered 
person, is judged relying upon the personal authen- 
tication algorithm (CHA-P). The personal authenti- 
cation algorithm (CHA-P) and the password code 
(PIN-P) are provided together with the secret algo- 
rithm (Xp) from the center, and may be arbitrarily 
used and may further, be arbitrarily provided from 
the center. The same also holds for the personal 
authentication algorithm (CHA-U) and the pass- 
word code (PIfM-U) on the user side. 

The software supplier sends the encrypted ran- 
dom number (K') to the user. The encrypted random 
number (K') may be sent by any method such as 
telephone, facsimile, personal computer communi- 
cation or floppy disk (when DES is used for encrypt- 
ing the program P, the amount of data to be sent to 
the user is, for example, 16 bytes (which corre- 
sponds to 32 characters when converted into a 
character sequence)). The program identifier (IDp) 
may be notified to the user together with the en- 
crypted random number (K 1 ) or may otherwise be 
printed on the package at the time of distributing the 
encrypted program (P l ). 

(4) Processing on the User Side — when the pro- 
gram is installed — 

• The user starts the installer software and inputs 
the encrypted random number (K*) that is sent 
and the program identifier (IDp). 

• The install software prepares the loader using 
the encrypted random number (K') that input 
and the program identifier (IDp), and is linked 
to the encrypted program (P') (P 1 with loader). 
The loader is a utility which can be processed 
by an OS (MS-DOS), and works as a mediator 
between the OS and the encrypted program 
(P'). At this moment, the encrypted program (P 1 ) 
still remains encrypted. 

(5) Processing on the User Side — when the pro- 
gram is executed — 

• The encrypted program P* with loader is started 
to authenticate the person who has the carrier. 

• The loader prepares the first encryption key 
(Kup) from the program identifier (IDp) and the 
secret algorithm (Xu), gives the encrypted ran- 
dom number (K 1 ) to the carrier execution unit, 
and decrypts the encrypted random number 
(K') based on the first encryption key (Kup) and 
the decryption program (D). The decrypted ran- 
dom number (K), however, stays in the carrier 
execution unit and is not output to the external 
unit. 

• The loader gives to the carrier execution unit 
an encryption part of the encrypted program 
(P') and the unit decrypts it using the decryption 
program (DE) and the random number (K), to 



thereby obtain the program P and thus the pro- 
gram P is executed. 
• The loader monitors the execution condition of 
the program (P) at all times, and causes the car- 
5 rier execution unit to decrypt the encrypted pro- 

gram (P 1 ) every time the encryption portion of 
the encrypted program (P') is read out. 

[0037] In this regard, the encrypted program (P) by 
to itself cannot be decrypted and is delivered to the author- 
ized users only in a variety of states. This may be, for 
example, a state in which a plurality of programs (the 
functions of which, however cannot be executed when 
the password is not given thereto) which already have 
is or will have a secret algorithm are recorded in a large- 
capacity recording medium such as CD-ROM, and the 
user who already has or will have the secret algorithm 
uses the programs and obtains the password and iden- 
tifier of a program which he likes by paying a royalty. 
20 [0038] In this regard, there is a convenience, as de- 
scribed below, even for the software supplier. 

• The software supplier may only prepare the en- 
crypted program by a copying operation, and thus 

25 the encrypted program may be mass-produced. 

• The hardware that is required can be used by a plu- 
rality of software suppliers. 

[0039] A further embodiment is illustrated in Fig. 3, 
30 wherein a third encryption key, an encryption algorithm 
and a decryption algorithm are further added to the em- 
bodiment of Fig. 2. 

[0040] The first encryption key (Kup) is arithmetically 
obtained by applying the secret algorithm and the iden- 

35 tifier (IDp) of the user or program (regarding the user, a 
target program is the identifier of the program). 
[0041] The second encryption key (r) is a random 
number and is arbitrarily set. The third encryption key 
(K2) is arbitrarily set in the same manner as the second 

40 encryption key 

[0042] The software supplier converts part or all of the 
third encryption key (K2) into the encrypted third encryp- 
tion key (K2 1 ) using the second encryption key (r) and 
the encryption algorithm (E2). 

45 [0043] Moreover, the software supplier converts part 
or all of the second encryption key (r) into the encrypted 
second encryption key (E(r)) using the first encryption 
key (Kpu) and the encryption algorithm (E1). 
[0044] The software supplier supplies the encryption 

so program (P') ( encrypted second encryption key (E(r)) 
and the encrypted third encryption key (K2 1 ) to the user. 
[0045] The user prepares the second encryption key 
(r) which is decrypted from the encrypted second en- 
cryption key (E(r)) using the first encryption key (Kup) 

55 and the decryption algorithm (D1), and prepares the 
third encryption key (K2) by decrypting the encrypted 
third encryption key (K2') using the second encryption 
key (r) and the decryption algorithm (D2). 
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[0046] The program (P) is prepared by decrypting the 
encrypted program (P l ) using the third encryption key 
(K2) and the decryption algorithm (D3). 
[0047] In the foregoing, the operation of Fig. 3 was 
described schematically. Other operations are as de- s 
scribed with reference to Fig. 2. 

[0048] According to the present invention as de- 
scribed above in detail, the software and the user are 
given specific secret algorithms and an identifier 
through an authority which is called a center. The user 10 
possesses encrypted software and inputs the identifier 
of the software into his own secret algorithm only when 
it is desired to easily decrypt it and use it. The operation 
is thus simple. In addition, possessing the secret algo- 
rithm, the user is allowed to use the software as iong as is 
the identifier is available even if the software is changed, 
and thus a burden on the user will be reduced. 
[0049] For the unauthorized users, on the other hand, 
even though they may get it, it is quite difficult for them 
to decrypt the encrypted software. 20 



Claims 

1. A program-data-protecting method in which a cent- 25 
er, a program supplier and a user participate, com- 
prising the steps of: 

the center produces a special algorithm held 
secretly only by the center; applies the special 30 
algorithm to a user identifier and a program (P) 
dividable into a plurality of loadable modules to 
produce a secret alogrithm (Xp, XJ exclusive 
to the program and the user; and supplies the 
produced secret algorithm to the user and pro- 35 
gram supplier; 

the program supplier produces a first encryp- 
tion key (Kpu) using the user identifier (IDu) and 
the secret algorithm (X p ), encrypts a second 40 
encryption key (K) using the first encryption key 
(Kpu), encrypts one module of the plurality of 
loadable modules to form an encrypted pro- 
gram (P'), produces an installation program us- 
ing a program identifier (I Dp) and the encrypted 45 
second encryption key (K 1 ), wherein the instal- 
lation program produces, only when the en- 
crypted module in the encrypted program is ex- 
ecuted, a common key using the program iden- 
tifier (IDu) and the secret user algorithm (Xp) to 50 
produce a loader for decrypting the encrypted 
program (P) and supplies the user with the pro- 
gram identifier (IDp), the encrypted second en- 
cryption key (K 1 ), the encrypted program (P*), 
and the installation program; and ss 

the user causes the supplied installation pro- 
gram to be operated by its own program exe- 



cution means to cause the installation program 
to install the encrypted program (P*) and pro- 
duce the loader; operates the loader when the 
encrypted module of the encrypted program 
(P) is executed by the program execution 
means to produce a common key by using the 
program identifier (IDp) and the secret user al- 
gorithm (Xu) to decrypt the encrypted second 
encryption key (K l ); and decrypts the program 
(P') by using the decrypted second encryption 
key (K). 

2. The program-data-protecting method according to 
claim 1 , wherein said second encryption key (K) is 
encrypted using a random number. 

3. A program data-protecting method in which a cent- 
er, a program supplier and a user participate, com- 
prising the steps of: 

the center produces a special algorithm held 
secretly only by the center; applies the special 
algorithm to a user identifier (IDu) and a pro- 
gram (P) dividable into a plurality of loadable 
modules to produce a secret algorithm (Xp, X u ) 
exclusive to the program and the user; and sup- 
plies the produced secret algorithm (X p , X„) to 
the user and program supplier; 

the program supplier produces a first encryp- 
tion key (Kup) using the user identifier (IDu) and 
the secret algorithm (Xp), encrypts a second 
encryption key (r) using the first encryption key 
(Kup); encrypts a third encryption key (K2) us- 
ing the encrypted second encryption key (r), en- 
crypts one module of the plurality of loadable 
modules to form an encrypted program (P') us- 
ing the third encryption key (K2), produces an 
installation program using the program identifi- 
er (IDp) and the encrypted third encryption key 
(E(r)), wherein the installation program produc- 
es, only when the encrypted module in the pro- 
gram is executed, a common key using the pro- 
gram identifier (IDp) and the secret algorithm 
(Xp) to produce a loader for decrypting the en- 
crypted program (P); and supplies the user 
with the program identifier (IDp), the encrypted 
third encryption key (K2'), the encrypted pro- 
gram (P) and the installation program; and 

the user causes the installation program to be 
operated by its own program execution means 
to cause the installation program to install the 
encrypted program (P') and produce the loader, 
and to operate the loader when the encrypted 
module of the encrypted program (P') is exe- 
cuted by the program execution means to pro- 
duce a common key by using the program iden- 
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tifier (IDp) and the secret user algorithm (Xu) to 
decrypt the encrypted second encryption key 
(E(r)) and decrypt the encrypted third encryp- 
tion key (K2*) and decrypt the encrypted pro- 
gram (P') using the decrypted third encryption s 
key (K2). 



Paten tan spruche 

10 

1 . Programmdatenschutzverfahren, an dem eine Zen- 
trale, ein Programmlieferant und ein Benutzer be- 
teiligt sind, umfassend die folgenden Schritte: 

Die Zentrale erzeugt einen spezielien Algorith- *5 
mus, dergeheim, nurvon der Zentrale verwahrt 
wird; wendet den spezielien Algorithmus auf ei- 
ne Benutzerkennung und ein Programm (P), 
das in eine Mehrzahl ladbarer Module geteilt 
werden kann, an, urn einen geheimen Algorith- 20 
mus (Xp, Xu) zu erzeugen, der dem Programm 
und dem Benutzer eigen ist; und liefert den er- 
zeugten geheimen Algorithmus an den Benut- 
zer und den Programmlieferant en; 

25 

der Programmlieferant erzeugt einen ersten 
Verschlusselungsschlussel (Kpu) durch Ver- 
wenden der Benutzerkennung (IDu) und des 
geheimen Algorithmus (Xp), verschlusselt ei- 
nen zweiten Verschlusselungsschlussel (K) 30 
durch Verwenden des ersten Verschlusse- 
lungsschlussels (Kpu), verschlusselt ein Modul 
der Mehrzahl ladbarer Module, urn ein ver- 
schlusseltes Programm (P 1 ) zu bilden, erzeugt 
ein Installationsprogramm durch Verwenden 35 
einer Programm kennung (IDp) und des ver- 
schlusselten zweiten Verschlusselungsschlus- 
sels (K'), wobeidas Installationsprogramm, nur 
wenn das verschlusselte Modul im verschlus- 
selten Programm ausgefuhrt wird, durch Ver- 40 
wenden der Programmkennung (IDu) und des 
geheimen Benutzeralgorrthmus (Xp) einen ge- 
meinsamen Schlussel erzeugt, urn einen Pro- 
grammlader zum Entschlusseln des verschlus- 
selten Programmes (P') zu erzeugen, und lie- 45 
fert dem Benutzer die Programmkennung 
(IDp), den verschlusselten zweiten Verschlus- 
selungsschlussel (K 1 ), das verschlusselte Pro- 
gramm (P 1 ) und das Installationsprogramm; 
und so 

der Benutzer bewirkt, da 3 das gelieferte Instal- 
lationsprogramm von seinem eigenen Pro- 
grammausfOhrungsmittel betrieben wird, um zu 
veranlassen, daB das Installationsprogramm 55 
das verschlusselte Programm (P) installiert 
und den Programmlader erzeugt; den Pro- 
gramm lade r betreibt, wenn das verschlusselte 



Modul des verschlusselten Programmes (P 1 ) 
durch das Programmausfuhrungsmittel ausge- 
fuhrt wird, um einen gemeinsamen Schlussel 
durch Verwenden der Programmkennung (IDp) 
und des geheimen Benutzeralgorrthmus (Xu) 
zu erzeugen, um den verschlusselten zweiten 
Verschlusselungsschlussel (K') zu entschlus- 
seln; und entschlusselt das Programm (P*) 
durch Verwenden des entschlussetten zweiten 
Verschlusselungsschlussels (K). 

2. Programmdatenschutzverfahren nach Anspruch 1 , 
wobei der zweite Verschlusselungsschlussel (K) 
durch Verwenden einer Zufallszahl verschlusselt 
wird. 

3. Programmdatenschutzverfahren, an dem eine Zen- 
trale, ein Programmlieferant und ein Benutzer be- 
teiligt sind, umfassend die folgenden Schrrtte: 

Die Zentrale erzeugt einen spezielien Algorith- 
mus, dergeheim, nurvon der Zentrale verwahrt 
wird; wendet den spezielien Algorithmus auf ei- 
ne Benutzerkennung (IDu) und ein Programm 
(P), das in eine Mehrzahl ladbarer Module ge- 
teilt werden kann, an, um einen geheimen Al- 
gorithmus (Xp, Xu) zu erzeugen, der dem Pro- 
gramm und dem Benutzer eigen ist; und liefert 
den erzeugten geheimen Algorithmus (Xp, Xu) 
an den Benutzer und den Programmlieferan- 
ten; 

der Programmlieferant erzeugt einen ersten 
Verschlusselungsschlussel (Kpu) durch Ver- 
wenden der Benutzerkennung (IDu) und des 
geheimen Algorithmus (Xp), verschlusselt ei- 
nen zweiten Verschlusselungsschlussel (r) 
durch Verwenden des ersten Verschlusse- 
lungsschlussels (Kpu); verschlusselt einen drit- 
ten Verschlusselungsschlussel (K2) durch Ver- 
wenden des verschlusselten zweiten Ver- 
schlusselungsschlussels (r), verschlusselt 
durch Verwenden des dritten Verschlusse- 
lungsschlussels (K2) ein Modul der Mehrzahl 
ladbarer Module, um ein verschlusseltes Pro- 
gramm (P 1 ) zu bilden, erzeugt ein Installations- 
programm durch Verwenden der Programm- 
kennung (IDp) und des verschlusselten dritten 
Verschlusselungsschlussels (E(r)), wobei das 
Installationsprogramm, nur wenn das ver- 
schlusselte Modul im Programm ausgefuhrt 
wird, durch Verwenden der Programmkennung 
(IDu) und des geheimen Algorithmus (Xp) ei- 
nen gemeinsamen Schlussel erzeugt, um ei- 
nen Programmlader zum Entschlusseln des 
verschlusselten Programmes (P 1 ) zu erzeugen; 
und liefert dem Benutzer die Programmken- 
nung (IDp), den verschlusselten dritten Ver- 
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schlusselungsschlussel (K2'), das verschlus- 
sette Programm (P) und das Installationspro- 
gramm; und 

der Benutzer bewirkt, daf3 das gelieferte Instal- 5 
lationsprogramm von seinem eigenen Pro- 
grammausfuhrungsmrttel betrieben wird, urn zu 
veranlassen, daB das Installationsprogramm 
das verschlusselte Programm (P) installiert 
und den Programmlader erzeugt, und den Pro- io 
grammlader betreibt, wenn das verschlQsselte 
Modul des verschlusselten Programmes (P') 
durch das Programmausfuhrungsmittel ausge- 
fuhrt wird, um einen gemeinsamen Schlussel 
durch Verwenden der Programmkennung (IDp) is 
und des geheimen Benutzeralgortthmus (Xu) 
zu erzeugen, um den verschlusselten zweiten 
Verschlusselungsschlussel (E(r)) zu entschlus- 
seln und den verschlusselten dritten Verschlus- 
selungsschlussel (K2 1 ) zu entschlusseln und 20 
das verschlusselte Programm (P') durch Ver- 
wenden des entschlQsselten dritten VerschlQs- 
selungsschlussels (K2) zu entschlusseln. 

25 

Revendications 

1. MSthode de protection de programmes-donnees a 
laquelle participent un centre, un fournisseur de 
programme et un utilisateur, comprenant les etapes 30 
suivantes : 

le centre produrt un algorithme special mainte- 
nu secret par le centre uniquement ; applique 
I'algorithme special a un identificateur d'utiiisa- 35 
teur et un programme (P) divisible en une plu- 
rality de modules chargeables afin de produire 
un algorithme secret (Xp, Xu) exclusif au pro- 
gramme et a I'utilisateur ; et fournit I'algorithme 
secret produit a I'utilisateur et au fournisseur de 40 
programme ; 

le fournisseur de programme produrt une pre- 
miere cle de chiffrement (Kpu) utilisant I'identi- 
ficateur d'utilisateur (IDu) et I'algorithme secret 
(Xp), crypte une seconde c\6 de chiffrement (K) 45 
en utilisant la premiere cl6 de chiffrement 
(Kpu), crypte un module de la pluralite de mo- 
dules chargeables pour former un programme 
chiffre (P'), produit un programme d'installation 
utilisant un identificateur de programme (IDp) so 
et la seconde cle de chiffrement cryptee (K') ( le 
programme d'installation produisant, unique- 
ment lorsque le module crypt 6 dans le pro- 
gramme crypte est exec ut6, une cle commune 
utilisant I'identificateur de programme (IDu) et 55 
('algorithme d'utilisateur secret (Xp) pour pro- 
duire un chargeur pour decrypter le programme 
cryptS (P*) et fournit a I'utilisateur I'identificateur 



de programme (IDp), la seconde cl6 de chiffre- 
ment cryptee (K') ( le programme crypte (P) et 
le programme d'installation ; et 
I'utilisateur commands la mise en oeuvre du 
programme d'installation fourni par le moyen 
d'exdcution de programme propre a ce dernier 
pour faire en sorte que le programme d'instal- 
lation installs le programme crypte (P 1 ) et pro- 
duise le chargeur ; I'utilisateur met en oeuvre le 
chargeur lorsque le module crypte du program- 
me crypte (P 1 ) est execute par le moyen d'exe- 
cution de programme afin de produire une cle 
commune en utilisant I'identificateur de pro- 
gramme (IDp) et i'algorithme d'utilisateur secret 
(Xu) pour decrypter la seconde cle de chiffre- 
ment cryptee (K*) ; et decrypte le programme 
(P') en utilisant la seconde cle de chiffrement 
decrypted (K). 

2. MGthode de protection de programmes-donnees 
selon la revendication 1 , dans laquelle ladite secon- 
de c!6 de chiffrement (K) est cryptee en utilisant un 
nombre aleatoire. 

3. Methods de protection de programmes-donnees a 
laquelle participent un centre, un fournisseur de 
programme et un utilisateur, comprenant les etapes 
suivantes : 

le centre produit un algorithme special mainte- 
nu secret par le centre uniquement ; applique 
I'algorithme special a un identificateur d'utilisa- 
teur (IDu) et un programme (P) divisible en une 
pluralite de modules chargeables afin de pro- 
duire un algorithme secret (Xp, X u ) exclusif au 
programme eta I'utilisateur ; et fournit Palgorith- 
me secret produit (Xp, Xu) a I'utilisateur et au 
fournisseur de programme ; 
le fournisseur de programme produit une pre- 
miere cle de chiffrement (Kup) utilisant I'identi- 
ficateur d'utilisateur (IDu) et I'algorithme secret 
(Xp), crypte une seconde cle de chiffrement (r) 
utilisant la premiere cle de chiffrement (Kup) ; 
crypte une troisieme cl6 de chiffrement (K2) uti- 
lisant la seconde cle de chiffrement cryptee (r), 
crypte un module de la pluralite de modules 
chargeables pour former un programme crypt 6 
(P) utilisant la troisieme cl6 de chiffrement 
(K2), produit un programme d'installation utili- 
sant I'identificateur de programme (IDp) et la 
troisieme cle de chiffrement cryptee (E(r)) ( le 
programme d'installation produisant, unique- 
ment lorsque le module crypte dans le pro- 
gramme est execute, une cle commune utili- 
sant I'identificateur de programme (IDp) et Cat- 
gorithme secret (Xp) pour produire un chargeur 
afin de decrypter le programme crypte (P') ; et 
fournit a I'utilisateur I'identificateur de program- 
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me (IDp), la troisieme cl6 de chiffrement cryp- 
t6e (K2') ( le programme crypt6 (P) et le pro- 
gramme d 1 installation ; et 
I'utilisateur commands la mise en oeuvre du 
programme d'installation par le moyen d'ex6- s 
cut ion de programme propre a ce dernier afin 
de faire en sorte que le programme d'installa- 
tion installe le programme crypte (P 1 ) et produi- 
se le chargeur, et de mettre en oeuvre le char- 
geur lorsque le module crypte du programme io 
crypte (P 1 ) est execute par le moyen d'ex6cu- 
tion de programme afin de produire une cl§ 
commune en utilisant I'identrficateur de pro- 
gramme (IDp) et I'algorithme utilisateur secret 
(Xu) pour decrypter la seconds c\6 de chiffre- 15 
ment cryptee (E(r)) et decrypter la troisieme cle" 
de chiffrement crypt6e (K2 1 ) et decrypter le pro- 
gramme crypte (P') utilisant la troisieme cle de 
chiffrement d6crypt6e (K2). 
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